Deck 3: Cyberattacks and Cybersecurity

After virus eradication, you can use a previous backup to restore an infected computer.

Ransomware is malware that stops you from using your computer or accessing your data until you meet certain demands, such as paying a ransom or sending photos to the attacker.

Vishing frequently leads consumers to counterfeit Web sites designed to trick them into initiating a denial-of-service attack.

Employees and contract workers must be educated about the importance of security so that they will be motivated to understand and follow the security policies.

The cost to repair the worldwide damage done by a computer worm has exceeded $1 billion on more than one occasion.

Computer forensics is such a new field that there is little training or certification processes available.

Whenever possible, automated system rules should mirror an organization's written policies.

Trojan horse has become an umbrella term for many types of malicious code.

Computer viruses differ from worms in that viruses can propagate without human intervention, often sending copies of themselves to other computers by email.

Bring your own device (BYOD) is a business policy that permits, and in some cases encourages, employees to use their own mobile devices (smartphones, tablets, or laptops) to access company computing resources and applications.

The cost of creating an email campaign for a product or a service is typically more expensive and takes longer to conduct than a direct-mail campaign.

Cyberterrorism involves the deployment of malware that secretly steals data in the computer systems of organizations, such as government agencies, military contractors, political organizations, and manufacturing firms.

Today's computer menace is much better organized and may be part of an organized group.

A completed risk assessment identifies the most dangerous threats to a company and helps focus security efforts on the areas of highest payoff.

Cyberterrorism is the intimidation of government or civilian population by using information technology to disable critical national infrastructure to achieve political, religious, or ideological goals.

The Fifth Amendment regulates the collection of the content of wire and electronic communications.

Rootkit is a set of programs that enables its users to gain administrator-level access to a computer without the end user's consent or knowledge.

A security policy outlines exactly what needs to be done to safeguard computers and their data, but not how it must be accomplished.

A spear phishing attack typically employs a group of zombies to keep the target so busy responding to a stream of automated requests that legitimate users cannot access the target.

Installation of a corporate firewall is the least common security precaution taken by businesses as it does not provide sufficient security.

Discussing security attacks through public trials and the associated publicity has not only enormous potential costs in public relations but real monetary costs as well.

A router is a hardware- or software-based network security system that is able to detect and block sophisticated attacks by filtering network traffic dependent on the packet contents.

It is not unusual for a security audit to reveal that too many people have access to critical data and that many people have capabilities beyond those needed to perform their jobs.

Even when preventive measures are implemented, no organization is completely secure from a determined computer attack.

State the purpose of an IT security audit and briefly discuss the key elements of such an audit.

Briefly describe ransomware and how a computer typically becomes infected with this type of malware.

Identify and briefly discuss five reasons why the number, variety, and impact of security incidents is increasing.

Briefly explain why many organizations are choosing to outsource their network security operations to a managed security service provider (MSSP).

Define computer forensics and briefly describe how one may prepare for a role as a computer forensics investigator.